|
|
@@ -4,18 +4,20 @@
|
|
|
|
|
|
本模块对shiro进行拓展,增加对[hsweb-authorization-api](../hsweb-authorization-api)中的注解进行实现。
|
|
|
实现类如下:
|
|
|
-| 注解名称 | 实现类 |
|
|
|
+
|
|
|
+| 注解名称 | 实现类 |
|
|
|
| ------------- |:-------------:|
|
|
|
-| [`@Authorize`](src/main/java/org/hswebframework/web/authorization/annotation/Authorize.java) | 暂未实现 |
|
|
|
-| [`@RequiresExpression`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresExpression.java) | [ExpressionAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/ExpressionAnnotationMethodInterceptor.java) |
|
|
|
-| [`@RequiresDataAccess`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresDataAccess.java) | [DataAccessAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/DataAccessAnnotationMethodInterceptor.java) |
|
|
|
-| [`@RequiresFieldAccess`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresFieldAccess.java) | [FieldAccessAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/FieldAccessAnnotationMethodInterceptor.java) |
|
|
|
+| [`@Authorize`](src/main/java/org/hswebframework/web/authorization/annotation/Authorize.java) | 暂未实现 |
|
|
|
+| [`@RequiresExpression`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresExpression.java) | [ExpressionAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/ExpressionAnnotationMethodInterceptor.java) |
|
|
|
+| [`@RequiresDataAccess`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresDataAccess.java) | [DataAccessAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/DataAccessAnnotationMethodInterceptor.java) |
|
|
|
+| [`@RequiresFieldAccess`](src/main/java/org/hswebframework/web/authorization/annotation/RequiresFieldAccess.java) | [FieldAccessAnnotationMethodInterceptor](src/main/java/org/hswebframework/web/authorization/shiro/boost/FieldAccessAnnotationMethodInterceptor.java) |
|
|
|
|
|
|
## 拓展接口
|
|
|
|
|
|
### 行级权限控制器
|
|
|
|
|
|
控制逻辑简述:
|
|
|
+
|
|
|
1. 获取被拦截方法的注解信息,取得当前需要验证的permission,action。如: user,query
|
|
|
2. 根据上一步获取到需要验证的permission和action获取当前登录用户权限信息中配置的控制规则(控制规则可以在前端进行设置)
|
|
|
3. 调用控制器进行验证
|
|
|
@@ -23,6 +25,7 @@
|
|
|
可自己实现DataAccessHandler接口并注入spring以实现自定义的控制方式
|
|
|
|
|
|
现已实现3中控制器
|
|
|
+
|
|
|
1. [CustomDataAccessHandler](src/main/java/org/hswebframework/web/authorization/shiro/boost/handler/CustomDataAccessHandler.java) 自定义控制器
|
|
|
2. [OwnCreatedDataAccessHandler](src/main/java/org/hswebframework/web/authorization/shiro/boost/handler/OwnCreatedDataAccessHandler.java) 控制只能操作自己创建的数据
|
|
|
3. [ScriptDataAccessHandler](src/main/java/org/hswebframework/web/authorization/shiro/boost/handler/ScriptDataAccessHandler.java) 使用脚本方式控制
|
zhouhao